CVE-2014-7923

Publication date 22 January 2015

Last updated 24 July 2024


Ubuntu priority

The Regular Expressions package in International Components for Unicode (ICU) 52 before SVN revision 292944, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via vectors related to a look-behind expression.

Status

Package Ubuntu Release Status
chromium-browser 15.10 wily
Fixed 40.0.2214.94-0ubuntu1.1120
15.04 vivid
Fixed 40.0.2214.94-0ubuntu1.1120
14.10 utopic
Fixed 40.0.2214.94-0ubuntu0.14.10.1.1110
14.04 LTS trusty
Fixed 40.0.2214.94-0ubuntu0.14.04.1.1068
12.04 LTS precise Ignored
10.04 LTS lucid Ignored end of life
icu 15.10 wily
Not affected
15.04 vivid
Not affected
14.10 utopic
Fixed 52.1-6ubuntu0.2
14.04 LTS trusty
Fixed 52.1-3ubuntu0.2
12.04 LTS precise
Fixed 4.8.1.1-3ubuntu0.3
10.04 LTS lucid Ignored end of life
oxide-qt 15.10 wily
Fixed 1.4.2-0ubuntu1
15.04 vivid
Fixed 1.4.2-0ubuntu1
14.10 utopic
Fixed 1.4.2-0ubuntu0.14.10.1
14.04 LTS trusty
Fixed 1.4.2-0ubuntu0.14.04.1
12.04 LTS precise Not in release
10.04 LTS lucid Not in release

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
icu